nvip.com.ua/
5.101.114.61301 Moved Permanently 169 B IP 5.101.114.61:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd6987d71fad7058a993a9028dc40454
3ed872fa3a00837bb008ad9d201850e2ea57a79f
f0e759f444eb3a324b621f0548919424455e81441d42ea6bc6bcd2b24fce1b92
GET / HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:15 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://nvip.com.ua/
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6527
Expires: Mon, 06 Feb 2023 12:27:03 GMT
Date: Mon, 06 Feb 2023 10:38:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7069
Expires: Mon, 06 Feb 2023 12:36:05 GMT
Date: Mon, 06 Feb 2023 10:38:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4926
Expires: Mon, 06 Feb 2023 12:00:22 GMT
Date: Mon, 06 Feb 2023 10:38:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 10:36:27 GMT
content-type: application/json
age: 109
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: T4xsJoazLlkbDvb7UF0y2MYWw5mmRaWpXkUlZbU3wv9F02J5xKFgVnwkxevUj7OkL2GfeI4oNk6hU1zu2cYeWw==
x-amz-request-id: Z4KP40D6HYF2BSFA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 10:24:54 GMT
age: 802
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 10:38:16 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cc96d118f50950553d96483696100128
e639191355700bcd0796a472910305fa67cd41c5
ca0cf989dbf79dd8030903630aec585a5b8655d313c72fcf2b58a39585a3e98b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA0CF989DBF79DD8030903630AEC585A5B8655D313C72FCF2B58A39585A3E98B"
Last-Modified: Sun, 05 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 06 Feb 2023 16:38:16 GMT
Date: Mon, 06 Feb 2023 10:38:16 GMT
Connection: keep-alive
nvip.com.ua/
5.101.114.61200 OK 14 kB IP 5.101.114.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10204)
Hash 097c02cf0d25fec3f76f0d176dfb3daa
75344bbfca06244b34f5d625791cc4e0fad6ef88
38fcf83fdfe0ca220d693c67d9d08e38386e91bb4f921d45adfc684e75045734
GET / HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14131
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 09:35:40 GMT
ETag: "1359a-5f404c11b0d47-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=5
Expires: Mon, 06 Feb 2023 10:38:21 GMT
nvip.com.ua/sites/default/files/css/css_xE-rWrJf-fncB6ztZfd2huxqgxu4WO-qwma6Xer30m4.css
5.101.114.61200 OK 2.2 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/css/css_xE-rWrJf-fncB6ztZfd2huxqgxu4WO-qwma6Xer30m4.css
IP 5.101.114.61:0
File type ASCII text, with very long lines (3007)
Hash 82b9d0ec8caaa50229d2d19ef4dfeee7
a3a385a6bdd45facc58dc00a8f54dad24856b6e8
601a17c8a837b3bf433a07b9352fe91123a7d48b83926bca4eae74123e61958e
GET /sites/default/files/css/css_xE-rWrJf-fncB6ztZfd2huxqgxu4WO-qwma6Xer30m4.css HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/css
Last-Modified: Mon, 23 Jan 2023 17:45:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d0-1da3"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/css/css_Ias2dPlNocNWKsoQlL1LjZdn5wqPRqo07T_9Ig0EOGk.css
5.101.114.61200 OK 2.7 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/css/css_Ias2dPlNocNWKsoQlL1LjZdn5wqPRqo07T_9Ig0EOGk.css
IP 5.101.114.61:0
File type ASCII text, with very long lines (3342)
Hash d6a122c484a355bea15453c2c9064a01
5f780704657390124ff0b5e24cdac3b7a3d488be
0ba9e20e4daac3e17ac639da3e1e1c2b3fed34d8464377ab726f3f0cfefb9153
GET /sites/default/files/css/css_Ias2dPlNocNWKsoQlL1LjZdn5wqPRqo07T_9Ig0EOGk.css HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/css
Last-Modified: Mon, 23 Jan 2023 17:45:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d0-2af2"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/js/js_Xdp_56Kwrjh9XNxqhxmaYOwIKVvPB-7wqAz_R60LA6w.js
5.101.114.61200 OK 1.4 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/js/js_Xdp_56Kwrjh9XNxqhxmaYOwIKVvPB-7wqAz_R60LA6w.js
IP 5.101.114.61:0
Hash 963b75e621420acc10e3079185baba8a
2c960eefe15039cc5d535bc3ae978c66e30a2953
c3150975346a823495ff4bb74f1b3a6b4f237bf8ac3c7215d5d6438992cdc14f
GET /sites/default/files/js/js_Xdp_56Kwrjh9XNxqhxmaYOwIKVvPB-7wqAz_R60LA6w.js HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 23 Jan 2023 17:45:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d0-14b5"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/css/css_blpuh3IqXzcGapdWewaYDC1pcxUo3K-t9mbOEkCJIcA.css
5.101.114.61200 OK 3.6 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/css/css_blpuh3IqXzcGapdWewaYDC1pcxUo3K-t9mbOEkCJIcA.css
IP 5.101.114.61:0
File type ASCII text, with very long lines (6825)
Hash 5c87ad289a0afb65433111afd135f320
01a26af2d96b2935dbde8520b39378f6c6c79b43
07830b8d355fc7bfc19545a43665f79f220073aceb23228e20d7a83b35872ca3
GET /sites/default/files/css/css_blpuh3IqXzcGapdWewaYDC1pcxUo3K-t9mbOEkCJIcA.css HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/css
Last-Modified: Mon, 23 Jan 2023 17:45:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d6-4c68"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/css/css_TGJb4peQX-zPXkYpaPJ84mCM5BpWmXDDxHM6QS3jZis.css
5.101.114.61200 OK 683 B URL HTTP/1.1 nvip.com.ua/sites/default/files/css/css_TGJb4peQX-zPXkYpaPJ84mCM5BpWmXDDxHM6QS3jZis.css
IP 5.101.114.61:0
File type ASCII text, with very long lines (2995)
Hash eafd88730926c65280286a6975c671f3
bd36356f686c9f7bccd0e2c894b420ff83529eef
21cc7bf47653f7879baea1d13a35a4d9d8b60522e62386b1047bbb0b50652254
GET /sites/default/files/css/css_TGJb4peQX-zPXkYpaPJ84mCM5BpWmXDDxHM6QS3jZis.css HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/css
Last-Modified: Mon, 23 Jan 2023 17:45:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d0-bb4"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/css/css_Z058nku9n9cj0dwnrx3y0FWTWt8-vpWzoDh6D0yPO44.css
5.101.114.61200 OK 10 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/css/css_Z058nku9n9cj0dwnrx3y0FWTWt8-vpWzoDh6D0yPO44.css
IP 5.101.114.61:0
File type ASCII text, with very long lines (35266)
Hash ae346a44d4a79d9b0803287fe09a01dd
84be5ebcf923ed28f9da765f4c662b46fa690e39
cc6297ecea2b32d8fb03df38c52899eb95d3f96c8c924ab8e9b6fc2656e0a9de
GET /sites/default/files/css/css_Z058nku9n9cj0dwnrx3y0FWTWt8-vpWzoDh6D0yPO44.css HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/css
Last-Modified: Mon, 23 Jan 2023 17:45:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d0-e655"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/js/js_BLxotNs2yt7YGlf9QRI9L9AMfdnkQfnN-_ADBTW3SiE.js
5.101.114.61200 OK 13 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/js/js_BLxotNs2yt7YGlf9QRI9L9AMfdnkQfnN-_ADBTW3SiE.js
IP 5.101.114.61:0
File type ASCII text, with very long lines (10283)
Hash 973ecb71298010776fa0aea296141a9b
db3a74eb08846f9928350f699242aca53d3b2700
4d2dceb4c20a6eff5858b49052bcd2e38c9e3ebb814b76947c98fa281c5aee14
GET /sites/default/files/js/js_BLxotNs2yt7YGlf9QRI9L9AMfdnkQfnN-_ADBTW3SiE.js HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 23 Jan 2023 17:45:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d0-9aaa"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/js/js_YY0AC8_LfFI0CKaT4pF0noN0aDoJNancJ1yuxI5ttys.js
5.101.114.61200 OK 27 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/js/js_YY0AC8_LfFI0CKaT4pF0noN0aDoJNancJ1yuxI5ttys.js
IP 5.101.114.61:0
File type ASCII text, with very long lines (22240)
Hash 00e5d12c6a73398fce94967a81e9b14c
e64139fdcc5f0d0009b41f695366cd187fc85be9
e1bc850ec54ec7d1adea5a175051114e894cf76f0ce317a4102e1b6d35760020
GET /sites/default/files/js/js_YY0AC8_LfFI0CKaT4pF0noN0aDoJNancJ1yuxI5ttys.js HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 23 Jan 2023 18:05:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cecc6a-15ce1"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/js/js_qssdUJqKJ3vsn9EyKQOpIbYIRR0F6HsT61pWeExbi_w.js
5.101.114.61200 OK 961 B URL HTTP/1.1 nvip.com.ua/sites/default/files/js/js_qssdUJqKJ3vsn9EyKQOpIbYIRR0F6HsT61pWeExbi_w.js
IP 5.101.114.61:0
Hash 5f322d8fbb893a33aafce5a6f034ca90
366f329ca1b2e422d475ed369ddfc91048c40734
89606b84eb5d690245b0e4f7b747a20b2f5d31a78693cfecb9028c8d02238a86
GET /sites/default/files/js/js_qssdUJqKJ3vsn9EyKQOpIbYIRR0F6HsT61pWeExbi_w.js HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 23 Jan 2023 17:45:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d3-c0e"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/all/themes/corporateclean/images/mini-user-green.png
5.101.114.61200 OK 722 B URL HTTP/1.1 nvip.com.ua/sites/all/themes/corporateclean/images/mini-user-green.png
IP 5.101.114.61:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d72bfa1424bbb2203d511f4f05eba47
b1004987a4955004d394a607d25f0ba8b6bfb5a7
f5756b6adb431ccdb099209ea6320669ed4a2d693481110fc86d64a454c76457
GET /sites/all/themes/corporateclean/images/mini-user-green.png HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/png
Content-Length: 722
Last-Modified: Tue, 19 Oct 2010 10:53:38 GMT
Connection: keep-alive
ETag: "4cbd78b2-2d2"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/drupal_white_small.png
5.101.114.61200 OK 1.1 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/drupal_white_small.png
IP 5.101.114.61:0
File type PNG image data, 20 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash f07cc636f04dfc5290dae4d5c8e6333c
9f152b4c6c94f0895e3765b65431a75c9fe7eca8
2a0e1c25390815a24f0a5db0243cda0febbee36ea154a288d71e91b689dd6928
GET /sites/default/files/drupal_white_small.png HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/png
Content-Length: 1064
Last-Modified: Fri, 10 Apr 2015 18:24:18 GMT
Connection: keep-alive
ETag: "55281552-428"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/logo2017site.png
5.101.114.61200 OK 5.1 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/logo2017site.png
IP 5.101.114.61:0
File type PNG image data, 157 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash e174ab09fa50f99d9471988122530ffb
94442f04c502fb7c9075514e60306a3338e8e320
9daf2ed89cd614996866e3bba372489f0c95e3bbd78af52211f792c6614a48a5
GET /sites/default/files/logo2017site.png HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/png
Content-Length: 5071
Last-Modified: Thu, 11 May 2017 18:56:22 GMT
Connection: keep-alive
ETag: "5914b3d6-13cf"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/logo_2016_1.jpg?itok=iP3rEaJm
5.101.114.61200 OK 20 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/logo_2016_1.jpg?itok=iP3rEaJm
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 300x180, components 3\012- data
Hash 3c444e497ccac31b3330fbc259394335
52d252c91d56075357faaaf6872e61188f46f621
e1cc18458f8d7aa918ab9e101e2e113bbc632378607cbb7638504be63be817fd
GET /sites/default/files/styles/front_firm/public/pictures/firm/logo_2016_1.jpg?itok=iP3rEaJm HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 20296
Last-Modified: Tue, 04 Jan 2022 10:21:39 GMT
Connection: keep-alive
ETag: "61d41fb3-4f48"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/css/css_Ody3Rnnxl1jUn-gSkZfNONZA3PvWask0tHZzQnHYUIU.css
5.101.114.61200 OK 129 B URL HTTP/1.1 nvip.com.ua/sites/default/files/css/css_Ody3Rnnxl1jUn-gSkZfNONZA3PvWask0tHZzQnHYUIU.css
IP 5.101.114.61:0
Hash d3b5d6f88f7d85629e7482f23f34f904
8a911b605a324bcd88a365d278970e1a0315becb
4d018e5da383126ec980d7b94487d7baaecd3b108be8b77033f930dc1c08264c
GET /sites/default/files/css/css_Ody3Rnnxl1jUn-gSkZfNONZA3PvWask0tHZzQnHYUIU.css HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/css
Last-Modified: Mon, 23 Jan 2023 17:45:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d0-e0"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/css/css_KewDO5wEEsc7lN4pHuveACu0xsD2jrJhTUcVZmmWkVs.css
5.101.114.61200 OK 679 B URL HTTP/1.1 nvip.com.ua/sites/default/files/css/css_KewDO5wEEsc7lN4pHuveACu0xsD2jrJhTUcVZmmWkVs.css
IP 5.101.114.61:0
File type ASCII text, with very long lines (2995)
Hash 42fbd483cbdabf276d13f8012ebd2283
90d76be20bd55464115da5753c338a4e065e6557
c0fdf47123546a0dacedcb314743bc169fee808d808f61253964d592a99c6c32
GET /sites/default/files/css/css_KewDO5wEEsc7lN4pHuveACu0xsD2jrJhTUcVZmmWkVs.css HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/css
Last-Modified: Mon, 23 Jan 2023 17:45:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cec7d0-bb4"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/img-7f1de37dd208c51224d3021bf646b75c-v.jpg?itok=UrH4Ilzg
5.101.114.61200 OK 4.8 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/img-7f1de37dd208c51224d3021bf646b75c-v.jpg?itok=UrH4Ilzg
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 75x75, components 3\012- data
Hash 05b48e3d45c037868edca672285ed311
f42dd55154b0a11860a16d7fc68d6700012697b7
04ba6d90be5e41c6d5e59ede756e3f1c0dd00ad0c4ba88751ecdf702a8620c1c
GET /sites/default/files/styles/teaser_image/public/pictures/realty/img-7f1de37dd208c51224d3021bf646b75c-v.jpg?itok=UrH4Ilzg HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 4805
Last-Modified: Fri, 12 Aug 2022 08:40:28 GMT
Connection: keep-alive
ETag: "62f611fc-12c5"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/img_20220508_122309.jpg?itok=QmNBoI_V
5.101.114.61200 OK 11 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/img_20220508_122309.jpg?itok=QmNBoI_V
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 75x75, components 3\012- data
Hash 031b13f4de4bfe8608710e247c2e58e2
540abdd63822e0839fd8b7c08c7da21907e60e78
9a043693b9d8bc33fd80d12e08e7bc53b4925ea70bd90744e6f3a304bad8a07c
GET /sites/default/files/styles/teaser_image/public/pictures/realty/img_20220508_122309.jpg?itok=QmNBoI_V HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 11196
Last-Modified: Sat, 23 Jul 2022 08:42:21 GMT
Connection: keep-alive
ETag: "62dbb46d-2bbc"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/1.2_52.jpg?itok=Jg1QHdF7
5.101.114.61200 OK 9.7 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/1.2_52.jpg?itok=Jg1QHdF7
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 75x75, components 3\012- data
Hash a80c3d6bfd0ab59f7a59275097e7fe00
7f6d3cacf0d4fb53d3b3101f9d7673fafedd87b2
df43287148b5f84de2a7f41219419f18edf9edf6e5229f983fd92b0df161b355
GET /sites/default/files/styles/teaser_image/public/pictures/realty/1.2_52.jpg?itok=Jg1QHdF7 HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 9734
Last-Modified: Mon, 23 Jan 2023 15:45:30 GMT
Connection: keep-alive
ETag: "63ceab9a-2606"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/1.1_39.jpg?itok=Y-N0YFTW
5.101.114.61200 OK 14 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/1.1_39.jpg?itok=Y-N0YFTW
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 75x75, components 3\012- data
Hash 4e80336581831d5c843847b829460054
005942b4a57702ce66ebaf6416122a03299743c3
919d1270bd24c09506b6178fa97c96a4c242957dcb3c29422738ae5ce7b88944
GET /sites/default/files/styles/teaser_image/public/pictures/realty/1.1_39.jpg?itok=Y-N0YFTW HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 14275
Last-Modified: Fri, 03 Feb 2023 18:25:37 GMT
Connection: keep-alive
ETag: "63dd51a1-37c3"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/600_wo_watermark/public/pictures/news/gallery/328565369_900604551076277_1454998402705019135_n.jpg?itok=KH2qSa2p
5.101.114.61200 OK 224 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/600_wo_watermark/public/pictures/news/gallery/328565369_900604551076277_1454998402705019135_n.jpg?itok=KH2qSa2p
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 600x350, components 3\012- data
Size 224 kB (223494 bytes)
Hash 4bf2d870aa416703adea3a886bdef561
5d9a91526d4b76ffb8682343e980df3841fb7f6b
72e6834a9d2e8f1567fcf12d0793f9bf062d3013f945b0569bcafbca05d9de26
GET /sites/default/files/styles/600_wo_watermark/public/pictures/news/gallery/328565369_900604551076277_1454998402705019135_n.jpg?itok=KH2qSa2p HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 223494
Last-Modified: Wed, 01 Feb 2023 17:52:28 GMT
Connection: keep-alive
ETag: "63daa6dc-36906"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/0ded7fde6d1d7725a8c9c7df65db638e-wide-big.jpg?itok=xPnqzc6n
5.101.114.61200 OK 12 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/0ded7fde6d1d7725a8c9c7df65db638e-wide-big.jpg?itok=xPnqzc6n
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 75x75, components 3\012- data
Hash 7783200c77c0cafc15ed8e7e68fa81f2
d88fa94b7089f97dae706bef16b09b11ac363ecf
15917a092759ea6bc5029e66d8a0979a2558ac2bbba1faaf2e0b307842980c91
GET /sites/default/files/styles/teaser_image/public/pictures/realty/0ded7fde6d1d7725a8c9c7df65db638e-wide-big.jpg?itok=xPnqzc6n HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 11944
Last-Modified: Fri, 29 Jul 2022 11:03:35 GMT
Connection: keep-alive
ETag: "62e3be87-2ea8"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/600_wo_watermark/public/pictures/news/gallery/324580043_6169889326464251_152389160595602749_n.jpg?itok=FC6Glouu
5.101.114.61200 OK 172 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/600_wo_watermark/public/pictures/news/gallery/324580043_6169889326464251_152389160595602749_n.jpg?itok=FC6Glouu
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 600x350, components 3\012- data
Size 172 kB (172530 bytes)
Hash 87ef4d565ef42ddc5464df3bacdcfbc3
270bc05c40a954089f51f3c1c485747752034a9f
c6901f6b62999c991d27c0e63be1f30e0922952b570a96163ead40efdc6473d5
GET /sites/default/files/styles/600_wo_watermark/public/pictures/news/gallery/324580043_6169889326464251_152389160595602749_n.jpg?itok=FC6Glouu HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 172530
Last-Modified: Tue, 31 Jan 2023 12:04:38 GMT
Connection: keep-alive
ETag: "63d903d6-2a1f2"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/1.1_83.jpg?itok=9uHa7CCi
5.101.114.61200 OK 12 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/1.1_83.jpg?itok=9uHa7CCi
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 75x75, components 3\012- data
Hash 4be5e7af032e0321b4d207286f4109a3
93af1aa90ed2405bbd793c7cd23b703c852fe132
6d2fbcaa68485c59a059ca09f2b22b1f74998fded613332ec5939dc5487fef5f
GET /sites/default/files/styles/teaser_image/public/pictures/realty/1.1_83.jpg?itok=9uHa7CCi HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 11815
Last-Modified: Tue, 07 Jun 2022 08:26:47 GMT
Connection: keep-alive
ETag: "629f0bc7-2e27"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/600_wo_watermark/public/pictures/news/gallery/slide-4-1.png?itok=Y7ZvOUVo
5.101.114.61200 OK 351 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/600_wo_watermark/public/pictures/news/gallery/slide-4-1.png?itok=Y7ZvOUVo
IP 5.101.114.61:0
File type PNG image data, 600 x 350, 8-bit/color RGBA, non-interlaced\012- data
Size 351 kB (351222 bytes)
Hash c554a8292e33d410896dd9499b5155fa
3879e205f39261b6dc573cfdd7e2796057c6e12f
25d07a46773a81f4334467b910620ec02f9b7a1237e7cc18073522be01bee79c
GET /sites/default/files/styles/600_wo_watermark/public/pictures/news/gallery/slide-4-1.png?itok=Y7ZvOUVo HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/png
Content-Length: 351222
Last-Modified: Fri, 03 Feb 2023 18:50:44 GMT
Connection: keep-alive
ETag: "63dd5784-55bf6"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/width_140/public/pictures/gallery/IMG_0184.JPG?itok=TaDtsJhP
5.101.114.61200 OK 4.3 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/width_140/public/pictures/gallery/IMG_0184.JPG?itok=TaDtsJhP
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 140x100, components 3\012- data
Hash 99bca16c3f0869bf79fcc9d032d863b9
3d8064de8bb941f1ed03894c3ea06743c51280b5
ef0ea78b0d6c7790ed888d07e73e60b26e2c97dcbdaa4964b7a40e6b09158f0e
GET /sites/default/files/styles/width_140/public/pictures/gallery/IMG_0184.JPG?itok=TaDtsJhP HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 4271
Last-Modified: Tue, 09 May 2017 20:37:13 GMT
Connection: keep-alive
ETag: "59122879-10af"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/width_140/public/pictures/gallery/peremogy8_1.jpg?itok=3LMEyW8m
5.101.114.61200 OK 2.9 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/width_140/public/pictures/gallery/peremogy8_1.jpg?itok=3LMEyW8m
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 140x100, components 3\012- data
Hash 5067388b165ad2d9b3d9fc4beef004ca
c2ae31adda75ef063a1476b0c8087c0ead7e035f
51fad41978772113a319e48d6272440c944e37c11a405d5bdfe217818e521a6f
GET /sites/default/files/styles/width_140/public/pictures/gallery/peremogy8_1.jpg?itok=3LMEyW8m HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 2871
Last-Modified: Tue, 09 May 2017 11:05:01 GMT
Connection: keep-alive
ETag: "5911a25d-b37"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/?q=simpleads/load/348/1
5.101.114.61200 OK 211 B URL HTTP/1.1 nvip.com.ua/?q=simpleads/load/348/1
IP 5.101.114.61:0
File type HTML document, ASCII text
Hash 3c8b8bc0a42d73695d6e50ae1da847b2
a26a0d5b269e3a5a6b5e501e12848c045769bd52
4f38a862b831f54b3c69b70e847e9c4146c7eb5490e9636978f65390377e6a55
GET /?q=simpleads/load/348/1 HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://nvip.com.ua/
Cookie: has_js=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 211
Connection: keep-alive
X-Powered-By: PHP/7.0.33-0+deb9u6
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
nvip.com.ua/sites/default/files/styles/width_140/public/pictures/gallery/1024x768%20%2810%29.jpg?itok=6tWZdKsr
5.101.114.61200 OK 5.4 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/width_140/public/pictures/gallery/1024x768%20%2810%29.jpg?itok=6tWZdKsr
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 140x100, components 3\012- data
Hash 256682dd3142a91d2f526dd0bb771d9b
c6521d6212ad40bf3a3e15db7b9ed890705b696a
9d295d4834638c312caef6403ff262d41a95e7050d41534620e59c2d15f29259
GET /sites/default/files/styles/width_140/public/pictures/gallery/1024x768%20%2810%29.jpg?itok=6tWZdKsr HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 5420
Last-Modified: Tue, 09 May 2017 10:36:12 GMT
Connection: keep-alive
ETag: "59119b9c-152c"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/photo_5377707862920383917_x.jpg?itok=NB6OE6di
5.101.114.61200 OK 10 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/photo_5377707862920383917_x.jpg?itok=NB6OE6di
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 75x75, components 3\012- data
Hash ba0efb2c21809bb717be842df6e592c9
d501182381fd6a7c6816861c22fa5767b6bea247
1a0f9a9b0dc99e740991d5c5e94cc84f1cc215a1b33710531da7c825c049ae7e
GET /sites/default/files/styles/teaser_image/public/pictures/realty/photo_5377707862920383917_x.jpg?itok=NB6OE6di HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 10377
Last-Modified: Mon, 30 Jan 2023 09:22:38 GMT
Connection: keep-alive
ETag: "63d78c5e-2889"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/img_20170711_132528_1.jpg?itok=-_lpCa8Y
5.101.114.61200 OK 7.4 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/teaser_image/public/pictures/realty/img_20170711_132528_1.jpg?itok=-_lpCa8Y
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 75x75, components 3\012- data
Hash 6ae1bcafb018a3b2387375c31ef102c7
32a955f95b9bcd2925a29124a2e0934ec4b4f35c
aacf0b7f3e466b0ba64e6f5952f6d43df7b3e2ce02806fbfeeaca76982576c72
GET /sites/default/files/styles/teaser_image/public/pictures/realty/img_20170711_132528_1.jpg?itok=-_lpCa8Y HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 7401
Last-Modified: Sun, 29 Jan 2023 08:51:27 GMT
Connection: keep-alive
ETag: "63d6338f-1ce9"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/advokatReklama.jpg?itok=MHAZuIyc
5.101.114.61200 OK 12 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/advokatReklama.jpg?itok=MHAZuIyc
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 300x180, components 3\012- data
Hash 134a58173f7790137f36182322c147e0
c2a15a5e72f2bd8ec4c0e385581b2c0eae5f69fb
5ac2809e9580c377408a04d87b7b8a1a4a8ebef6c31f8204b9c16da07730e550
GET /sites/default/files/styles/front_firm/public/pictures/firm/advokatReklama.jpg?itok=MHAZuIyc HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 12068
Last-Modified: Sat, 08 Jul 2017 07:10:04 GMT
Connection: keep-alive
ETag: "5960854c-2f24"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/24837684_1761654790553054_1596090125748435462_o.jpg?itok=kif9VMBN
5.101.114.61200 OK 72 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/24837684_1761654790553054_1596090125748435462_o.jpg?itok=kif9VMBN
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 300x180, components 3\012- data
Hash b214c1680e92eabe0a0f5f8447628d16
5ecb66dc98537abf56ab3255fba0ac32a06a7647
32a376e7acb397bac9da995cde9d6446787d757cefd22feb48d5b7bee5842135
GET /sites/default/files/styles/front_firm/public/pictures/firm/24837684_1761654790553054_1596090125748435462_o.jpg?itok=kif9VMBN HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 71985
Last-Modified: Fri, 05 Jan 2018 11:53:10 GMT
Connection: keep-alive
ETag: "5a4f6726-11931"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/all/libraries/youmax/index.html
5.101.114.61200 OK 652 B URL HTTP/1.1 nvip.com.ua/sites/all/libraries/youmax/index.html
IP 5.101.114.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 28fc38cc1e9eb933382598dd74082287
c1fd9b3454aa16fb7e85666bf9c1255f930ca688
94f11e5b17b170363d20703fe55065b267ce0c9fcf0b61d9a18d6840006dd61c
GET /sites/all/libraries/youmax/index.html HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Cookie: has_js=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 652
Connection: keep-alive
Last-Modified: Thu, 03 Mar 2022 08:35:28 GMT
ETag: "516-5d94c47c80baf-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Expires: Mon, 20 Feb 2023 10:38:16 GMT
nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/a1b6ddffd3ecb93cdac90cd3755290d8.jpg?itok=7gb_PKTM
5.101.114.61200 OK 66 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/a1b6ddffd3ecb93cdac90cd3755290d8.jpg?itok=7gb_PKTM
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 300x180, components 3\012- data
Hash fba43b571d616b03d621b17d0f256b7a
d34ac1e78a85e7c6f314e7dc12a7cdeb43709ddf
b91c5a4ceabfa7f44c94770ae22e2caf409993272f8dfd0513dcd8bafcb715e1
GET /sites/default/files/styles/front_firm/public/pictures/firm/a1b6ddffd3ecb93cdac90cd3755290d8.jpg?itok=7gb_PKTM HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 65911
Last-Modified: Wed, 27 Feb 2019 15:24:21 GMT
Connection: keep-alive
ETag: "5c76aba5-10177"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/img-b6c98de9dce30ba0cb671609a60e9dde-v.jpg?itok=WJsE1Jtp
5.101.114.61200 OK 59 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/img-b6c98de9dce30ba0cb671609a60e9dde-v.jpg?itok=WJsE1Jtp
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 300x180, components 3\012- data
Hash 5d70856fdf6c472a3a6c64e999aa3395
213cc98076480c4363ddc91b576e9cf4f59381ae
d064d61421b5bd27b3c26c0b57cdc2435853efddf160809141a6cac799c9f5b0
GET /sites/default/files/styles/front_firm/public/pictures/firm/img-b6c98de9dce30ba0cb671609a60e9dde-v.jpg?itok=WJsE1Jtp HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 58721
Last-Modified: Sat, 09 May 2020 20:03:52 GMT
Connection: keep-alive
ETag: "5eb70ca8-e561"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/terminovyy_2_kopyya.jpg?itok=4rel6QRM
5.101.114.61200 OK 83 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/terminovyy_2_kopyya.jpg?itok=4rel6QRM
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 300x180, components 3\012- data
Hash 51b70c13acb09bd07adedcd49f2c134a
5459723bef4cdb8b5f265f024b7ec1346119eb12
99001949d20e873a048892180a21af5725e265331c7f7ab68a69084a7856a16f
GET /sites/default/files/styles/front_firm/public/pictures/firm/terminovyy_2_kopyya.jpg?itok=4rel6QRM HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 83308
Last-Modified: Fri, 03 Jun 2022 12:36:03 GMT
Connection: keep-alive
ETag: "629a0033-1456c"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/all/themes/corporateclean/images/blockquote.png
5.101.114.61200 OK 559 B URL HTTP/1.1 nvip.com.ua/sites/all/themes/corporateclean/images/blockquote.png
IP 5.101.114.61:0
File type PNG image data, 40 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 67db8f396a07e17716b768880da985d1
3c804ad75ef7712b2fb784d6c7bb57b71c34a802
bfa225e9e0a7eb295409535c88ac9f20176272b6e581566007c8488d986090f2
GET /sites/all/themes/corporateclean/images/blockquote.png HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/sites/default/files/css/css_Z058nku9n9cj0dwnrx3y0FWTWt8-vpWzoDh6D0yPO44.css
Cookie: has_js=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/png
Content-Length: 559
Last-Modified: Mon, 08 May 2017 10:39:48 GMT
Connection: keep-alive
ETag: "59104af4-22f"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/5c2d2a49-4383-4309-aad8-3e163c784dd7.jpeg?itok=_PNALjut
5.101.114.61200 OK 102 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/styles/front_firm/public/pictures/firm/5c2d2a49-4383-4309-aad8-3e163c784dd7.jpeg?itok=_PNALjut
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 300x180, components 3\012- data
Size 102 kB (101672 bytes)
Hash 66be5743d9105a330f255f97519a8995
0635dbdbbc69f3049006a89e026efb72af56e595
cba805d6aec6700f8ce1caebf035475f0730b5a1a0c3d57b0f3d67ff2e50e1dd
GET /sites/default/files/styles/front_firm/public/pictures/firm/5c2d2a49-4383-4309-aad8-3e163c784dd7.jpeg?itok=_PNALjut HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/jpeg
Content-Length: 101672
Last-Modified: Fri, 07 May 2021 17:50:43 GMT
Connection: keep-alive
ETag: "60957df3-18d28"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
nvip.com.ua/sites/default/files/corolla_favicon_0.ico
5.101.114.61200 OK 642 B URL HTTP/1.1 nvip.com.ua/sites/default/files/corolla_favicon_0.ico
IP 5.101.114.61:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash faafc2faec17b6e8a7733ea95fc708c5
1ab6f7619571302c58d8e47ec366300c4adc0cd9
0a58a9596748104b656d574684a3a056c206028ee763776533bd8c1136f54e05
GET /sites/default/files/corolla_favicon_0.ico HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Cookie: has_js=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: image/x-icon
Last-Modified: Wed, 10 May 2017 15:32:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"59133274-47e"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/all/libraries/youmax/js/youmax.js
5.101.114.61200 OK 5.6 kB URL HTTP/1.1 nvip.com.ua/sites/all/libraries/youmax/js/youmax.js
IP 5.101.114.61:0
File type ASCII text, with very long lines (690)
Hash d4b92bc74fb4fb2bfc31b7ae5093a569
cc2ef50526fba90be191e0541656b42fbb5b15a1
0c8eea6eb635c61ff756c582ea45ae268253d85bc270920fb50e0290974482d7
GET /sites/all/libraries/youmax/js/youmax.js HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/sites/all/libraries/youmax/index.html
Cookie: has_js=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Sat, 13 Jun 2020 15:21:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5ee4ef12-603a"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
nvip.com.ua/sites/all/libraries/youmax/css/youmax2.css
5.101.114.61200 OK 1.3 kB URL HTTP/1.1 nvip.com.ua/sites/all/libraries/youmax/css/youmax2.css
IP 5.101.114.61:0
Hash 56534ea709d26a14f8a9c754a50b6106
ef532b004261954b5f4da9871c145f43722dc4a0
8d50a8af4554c48308595581cf43d79b6f93488b8360ae3b3582902aa9269680
GET /sites/all/libraries/youmax/css/youmax2.css HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/sites/all/libraries/youmax/index.html
Cookie: has_js=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:16 GMT
Content-Type: text/css
Last-Modified: Sat, 13 Jun 2020 15:21:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5ee4ef0b-eea"
Expires: Thu, 16 Feb 2023 10:38:16 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c08839b04520623798a6d3752711147
535035b7350cf8a4324eb69ffda7dfaaa1a29918
5ddf0cfbfe95f4690768f8ca167dcdd47f0fa7c6d076cbee0bdb225bba697429
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6383
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Last-Modified: Mon, 06 Feb 2023 08:51:54 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 10:07:20 GMT
age: 1857
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
connect.facebook.net/uk_UA/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/uk_UA/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 2cbb4551d93bc030a623e869fbfef9ae
5044aa0de4368c117e637aa696b58cae680352fd
c35eab8babeb88172ce50c8d1a4ad90a009d10444e919bcebb13f083b7f952b5
GET /uk_UA/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 068947fd8a9f1b9006177255e2b7fb5b
etag: "c17e2fdc8f371c9497c87c7ac1a8a13a"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 06 Feb 2023 10:49:33 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: LLtFUdk7wDCmI+hp+/75rg==
x-fb-debug: 2xFv+S3qPjWpjHDMjJZL+n2/XbFH+IH1KNdvPYP4tVJ/T5uKJHDY6rb+k4T61xQj/PfxuSU7dP5sbr/lld30zg==
content-length: 1687
x-fb-trip-id: 1904183273
date: Mon, 06 Feb 2023 10:38:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.7.min.js
69.16.175.42200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-1.7.min.js
IP 69.16.175.42:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 252414e4e6d318c579e9c1221f0e818d
9f8c9f042732ecf4ebb9a16cf141ce9af983e2e1
740b6c679f0d1e9b684a6f27877415999d332b5be6e82b0afa038ba5a9458851
GET /jquery-1.7.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 06 Feb 2023 10:38:17 GMT
content-encoding: gzip
content-length: 33254
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-16f44"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675679897.dop226.sk1.t,1675679897.cds208.sk1.hn,1675679897.cds237.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4575
Expires: Mon, 06 Feb 2023 11:54:32 GMT
Date: Mon, 06 Feb 2023 10:38:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1c08839b04520623798a6d3752711147
535035b7350cf8a4324eb69ffda7dfaaa1a29918
5ddf0cfbfe95f4690768f8ca167dcdd47f0fa7c6d076cbee0bdb225bba697429
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6383
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Last-Modified: Mon, 06 Feb 2023 08:51:54 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (4879)
Hash 74adec83dd483ba10da6ff84663dbf3d
3d6bc8eb253c3e595163a877f66684f974ad4bd9
1cee95f691fe22baee2ffd790e57fb504f6c0d5a7c16f269cdc39917d129a392
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 06 Feb 2023 10:38:17 GMT
expires: Mon, 06 Feb 2023 10:38:17 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 9547285995784533619
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49796
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/uk_UA/sdk.js?hash=5d1ca112f642f712e9a4d5be4dd76304
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/uk_UA/sdk.js?hash=5d1ca112f642f712e9a4d5be4dd76304
IP 31.13.72.12:0
File type ASCII text, with very long lines (13192)
Hash d230c2d759b22e79331a5292f3d993b6
5b33f3ee8a838fdb0f6a067bde7cdee68df9aafe
17bbb1860baeb38b6b2eeeb06740b965e3d0f3d97044949bb9bf68acd6f3a5cb
GET /uk_UA/sdk.js?hash=5d1ca112f642f712e9a4d5be4dd76304 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nvip.com.ua
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 93281e43901838ac3d452bbdd17d1e10
etag: "cab968d213a2342f35cc671c6bd74e33"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 06 Feb 2024 09:12:19 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 0jDC11myLnkzGlKS89mTtg==
x-fb-debug: t1+IhMrt0hS5vM/XpQZT1elJVVzvAV7H7xNU7iuysFgGInsAzKIRI452uIlTt9sbwAoZCkhTpUH0v2pacqq2kg==
content-length: 87165
x-fb-trip-id: 1904183273
date: Mon, 06 Feb 2023 10:38:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleapis.com/youtube/v3/channels?part=id&forUsername=nvipportal&key=AIzaSyC1j0lz2J9IjBYCgo55U6jKHmmQexuvjUE&callback=jQuery170931499504828749_1675679941649
142.250.74.170200 OK 275 B URL HTTP/2 www.googleapis.com/youtube/v3/channels?part=id&forUsername=nvipportal&key=AIzaSyC1j0lz2J9IjBYCgo55U6jKHmmQexuvjUE&callback=jQuery170931499504828749_1675679941649
IP 142.250.74.170:0
Hash 5b2445e310b224ced8a331b1a6138470
282539d2f5e297e6b8a8e47d2f3da5368d6e65c0
4b056f4747a85da6006942f9cf34e406be3c184cbbfe08424b489908741e8379
GET /youtube/v3/channels?part=id&forUsername=nvipportal&key=AIzaSyC1j0lz2J9IjBYCgo55U6jKHmmQexuvjUE&callback=jQuery170931499504828749_1675679941649 HTTP/1.1
Host: www.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 06 Feb 2023 10:38:17 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 275
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.164.100.136101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.100.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GmMuXbhYepzbpZk3eZpD5w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NiguRD3YzNhEHADn7H20jQVw/2M=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d85a52a6f96da59010dc4aef95c24b6d
9e6472e7398d275d976e42fe5eaa6d555146d5bd
3dca4e3f16c9147034ad26ebcb1ab8b175f12ec93697b5d749f383220d0d9069
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2183fdf183ed33f2cd4342abd7bcadbe
007fe0bb01b7d77fbaaff5346fd7582041c978c8
8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 946a5ef2e5dd7032e7654d1435fd45b8
1b76eaeee4ba6615d4dda0c17027d37e5c455ba0
98a4c0fa4a73c9fa093b9ccb9db150602ea742ddf6f6a236a0d1fd0ed9d75143
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=nvip.com.ua&callback=_gfp_s_&client=ca-pub-1823919208468086
142.250.74.34200 OK 253 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=nvip.com.ua&callback=_gfp_s_&client=ca-pub-1823919208468086
IP 142.250.74.34:0
File type ASCII text, with very long lines (389), with no line terminators
Hash 57b728c985111d9f8771941a6cc85a8e
3526f13b0fec779573d5995e0f0500097ab2a01d
678d66575e8cd7a72cadda0691babcbb9551bd59de31bbf537dd2b8df6f5efa7
GET /gampad/cookie.js?domain=nvip.com.ua&callback=_gfp_s_&client=ca-pub-1823919208468086 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 06 Feb 2023 10:38:17 GMT
server: cafe
cache-control: private
content-length: 253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08f413d9495301a18dcad1f0dbf03952
3a5f9dfb9ae6892aab934554cf811e176168dbe2
0804eb4b86e37241393f4610bbd36ca15934bd08bf8bf12754df88f57fa79a9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=nvip.com.ua
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=nvip.com.ua
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=nvip.com.ua HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 06 Feb 2023 10:38:17 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AL5GRJX-nlD2xZk5ca5S5jouBwy_xLcS5oYvIe17-DkJ=s88-c-k-c0x00ffffff-no-rj
142.250.74.129200 OK 2.7 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJX-nlD2xZk5ca5S5jouBwy_xLcS5oYvIe17-DkJ=s88-c-k-c0x00ffffff-no-rj
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 88x88, components 3\012- data
Hash 30067c192e180ebd16f76ae68d400a15
ca9f4dc7b687235b5589c5fc8e9272934898a2b3
9668580989f5437c05b4b254e76d37260e652bc39ce01b88ba1a5b0e463cef8b
GET /ytc/AL5GRJX-nlD2xZk5ca5S5jouBwy_xLcS5oYvIe17-DkJ=s88-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2749
x-xss-protection: 0
date: Mon, 06 Feb 2023 10:38:17 GMT
expires: Sat, 04 Feb 2023 11:49:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v12"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
216.58.207.238200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Mon, 06 Feb 2023 10:38:17 GMT
expires: Mon, 06 Feb 2023 10:38:17 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=nvip.com.ua
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=nvip.com.ua
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=nvip.com.ua HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 06 Feb 2023 10:38:17 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d85a52a6f96da59010dc4aef95c24b6d
9e6472e7398d275d976e42fe5eaa6d555146d5bd
3dca4e3f16c9147034ad26ebcb1ab8b175f12ec93697b5d749f383220d0d9069
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nvip.com.ua/sites/default/files/field/image/rybachok_baner_965-150.jpg
5.101.114.61200 OK 44 kB URL HTTP/1.1 nvip.com.ua/sites/default/files/field/image/rybachok_baner_965-150.jpg
IP 5.101.114.61:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 965x150, components 3\012- data
Hash 04c6779b583756efe7faf50016d68f3a
9d918aeaca85d42ed630e7401efdc0343fc20d47
5f21a21ab38c754d7f5f0589eb469f6a708d86c75b5dcbc3c269dede810b3825
GET /sites/default/files/field/image/rybachok_baner_965-150.jpg HTTP/1.1
Host: nvip.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Cookie: has_js=1; __gads=ID=7fb3ecd5a4f41813-22c4edb9a1db000e:T=1675679897:RT=1675679897:S=ALNI_MY9hjScNuF2UNhtNzpKFBLhHeyEPw; __gpi=UID=00000bb106428b17:T=1675679897:RT=1675679897:S=ALNI_MalSnGhNNSzWF8vuqmEO81vlBsAhw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 06 Feb 2023 10:38:17 GMT
Content-Type: image/jpeg
Content-Length: 43468
Last-Modified: Sun, 06 Nov 2022 09:01:01 GMT
Connection: keep-alive
ETag: "636777cd-a9cc"
Expires: Thu, 16 Feb 2023 10:38:17 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2183fdf183ed33f2cd4342abd7bcadbe
007fe0bb01b7d77fbaaff5346fd7582041c978c8
8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=auth/exm=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs
216.58.207.238200 OK 44 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=auth/exm=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs
IP 216.58.207.238:0
File type ASCII text, with very long lines (1673)
Hash ebc87691dfbd7c328f7afb83abbf1565
ee8f879abfa23950db0937be218b3b6ad67ed470
4396edb6c48f8bab3016dd1941da66d51cfba9855b929c0adff03c2eb1a904ea
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=auth/exm=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 43809
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 10:34:08 GMT
expires: Fri, 02 Feb 2024 10:34:08 GMT
cache-control: public, max-age=31536000
age: 345849
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 946a5ef2e5dd7032e7654d1435fd45b8
1b76eaeee4ba6615d4dda0c17027d37e5c455ba0
98a4c0fa4a73c9fa093b9ccb9db150602ea742ddf6f6a236a0d1fd0ed9d75143
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2183fdf183ed33f2cd4342abd7bcadbe
007fe0bb01b7d77fbaaff5346fd7582041c978c8
8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e11dcc5ae62e80e09454f987c9fc4d3b
e6ce4f8560d4b052dca404233a2d89c7461403db
8d96a6a878fa54929ee16347f98ef4569fd956f4dc0f969ba0c602f8ded9cda5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 17f83c823a1789ea21760ac0ff91efd1
0a3c92a9639ce39aaab0e8b0d5b7ab512cc91e69
9cc7f497eb8e32d058f70339ff3cbee6d1d21c070242c490987b733b7420a62c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 17f83c823a1789ea21760ac0ff91efd1
0a3c92a9639ce39aaab0e8b0d5b7ab512cc91e69
9cc7f497eb8e32d058f70339ff3cbee6d1d21c070242c490987b733b7420a62c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 17f83c823a1789ea21760ac0ff91efd1
0a3c92a9639ce39aaab0e8b0d5b7ab512cc91e69
9cc7f497eb8e32d058f70339ff3cbee6d1d21c070242c490987b733b7420a62c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/C4OISw5yizc/mqdefault.jpg
142.250.74.118200 OK 12 kB URL HTTP/2 i.ytimg.com/vi/C4OISw5yizc/mqdefault.jpg
IP 142.250.74.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 7004ebe19877d35f1543e20a46796c5c
9a55cd6b17cbf932550685e1edb79d061e5a6a76
0c75a4b6a92d67b3e46b0daad6797d7b37854104febff5c0206e72c756ad55b7
GET /vi/C4OISw5yizc/mqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 11497
date: Mon, 06 Feb 2023 10:38:17 GMT
expires: Mon, 06 Feb 2023 12:38:17 GMT
cache-control: public, max-age=7200
etag: "1673303997"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/7s5-yJTJWVs/mqdefault.jpg
142.250.74.118200 OK 8.2 kB URL HTTP/2 i.ytimg.com/vi/7s5-yJTJWVs/mqdefault.jpg
IP 142.250.74.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 63d357f41291197771520044242372a0
ffa847e8fa2d95e3a6eed2f5fda4e09ab204618e
5a5ad84da1408cfb636069226a01f72625973fd341a1e7a6f55706edf0598ac3
GET /vi/7s5-yJTJWVs/mqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 8152
date: Mon, 06 Feb 2023 10:38:17 GMT
expires: Mon, 06 Feb 2023 12:38:17 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/zOTc1l5mDVU/mqdefault.jpg
142.250.74.118200 OK 12 kB URL HTTP/2 i.ytimg.com/vi/zOTc1l5mDVU/mqdefault.jpg
IP 142.250.74.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash e842ef78d0d76c7ad6abda1705d37015
ec93232145c970094dfa267615c704d5677819d7
74dd435a99c94a02a23da9e79b9d71b1642be66a226f416936595979e74a66fd
GET /vi/zOTc1l5mDVU/mqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 11574
date: Mon, 06 Feb 2023 10:38:17 GMT
expires: Mon, 06 Feb 2023 12:38:17 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 17f83c823a1789ea21760ac0ff91efd1
0a3c92a9639ce39aaab0e8b0d5b7ab512cc91e69
9cc7f497eb8e32d058f70339ff3cbee6d1d21c070242c490987b733b7420a62c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
216.58.207.195200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 216.58.207.195:0
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Feb 2023 22:24:54 GMT
expires: Sun, 04 Feb 2024 22:24:54 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 03:12:59 GMT
content-type: text/javascript
age: 130403
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fnvip.com.ua&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
216.58.207.237200 OK 21 kB URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fnvip.com.ua&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1448)
Hash c2494359c8b9840ee154a75f06cb075a
5a99e51fe8f55dae8b9204ab6f9b594a52c1ff06
f03ccfdf3f1c0afe452ff4075ac063a3de4152fa2321a50b34f345da0aa3e85e
GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fnvip.com.ua&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 06 Feb 2023 10:38:17 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-uys7yzLy8YWlqpxa2PjCWA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.66200 OK 49 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.66:0
File type ASCII text, with very long lines (3504)
Hash 40b8ffdc606e81703c5f6a39df96f373
0a39b905fe6b8f947d256b01614abcdd27baef65
93cfc3bdb53008e8640dee5f3e7515b10a9b2959e69d8f2919f3d243cf547f36
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 49146
date: Mon, 06 Feb 2023 10:38:18 GMT
expires: Mon, 06 Feb 2023 10:38:18 GMT
cache-control: private, max-age=3000
etag: "1675254965429469"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 711bfa565919548ccadd9e9e1ac41792
4ff0e50ab07d187f3e71e30924990461c77f8f04
92d179de98d6fd14807963bae6dae8852197f9fd7e498c3abd98143ff209ca28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js
142.250.74.97200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.97:0
File type ASCII text, with very long lines (1605)
Hash aeaebc4fec11dcafa566897f3b2aa937
7b4507c8793c1ce833dccaeb7dbc956c1fd06668
c23b4a16d9468c0018f502492594408fc809fc0fe003aed2f1145ba3dca87bae
GET /pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7647
x-xss-protection: 0
date: Sun, 05 Feb 2023 21:43:53 GMT
expires: Sun, 19 Feb 2023 21:43:53 GMT
cache-control: public, max-age=1209600
age: 46465
etag: 2161395064574532456
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a1b0adb1c8292e353e84a56a163dddf0
e72fe20524a0cc1d6077eeef4445bd24cae46a60
d82c206adfc4b455e24ae565256cca03e48944af39dbbef0c704ddfc1cce501a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjstWz3Opz1FB390nKCdAAWv--2lFXxLHlVVLx3sBCxxaGX3NitPW0f_2SnK6p-v9Ybr2hi5qZY41y0IkFStMUWfXoMI4uvgeIL3PIYVK42Owrpg6isg8gyaKM-3KTjJ-h_MXt9cmJtv23rz7YdqfXwWUAiMp_Ir6V-m-gLWHoUM97CFiqw9dMQO6NMPS0i4RavslhgOv67_pKDahq73nNKl6HvPK2391BQtFEhZjlenUzK9PXWNc7QQDSRS3KUUTzpTvAjjV9aZDryVXxSHG1E-1wCf4UmBcodZsxDvd6Kbq56JtdcnDYIu4B3uK3ql1gE0AsBBZeM8UjmpxuOlMoLH-9IYTfTmfo5MGIP3OXSYrMTt3GOo3uyEFN99Rey1txfieq4yJQwUCjY1KJfGbG4quC2aRaoVRIPocjAqSj5o8mP1t2SnNDiGyGn0nuLjU6b1l5APdLdDDJTRHPMHnn9IBtU34JV0RQwBs1fpHrPcqnvalnYWhrWZcUWSHh20-HgwVzzESSF2mJ_TDoPn5hPnOVwwPsAkxrFimQEtc0xPgrFyo4-v9-uDeQR966Z2LLo-udm3r-eGh43vH0OFen997KdDUaiWOqnV5r28jz_wzGI60E-E1Zgnf3YcJ3dWpeiVU6QT-VQEEPwVkoFchPV-bSUN9MYjnvEw5ZIkXv0oN10gpQ3cOt81pzgxWxCRaNmin4LtzF-qlzCbh4yYXpf7ptkDIauhhelCFecNOd-PRGh_Fkb_eHu3Vo8W67P385qxM-JJC2n7Q2ewHPSe_mbd7zrqhLMqvQuDs3ay8afeOtAi1NjivP8Fdt5agc290toP_L-juCVxCogeOYp_1lC5SxKPZNjeCINSOkwE2_TPy4ngQ4nHcRmH2TAEs8CLyO3P9cw5_jB60c1Nrlwsq36fh0uCPdGbZQqBLNkHWHU0fUF62qaaiHkNdUDkSgtO0UdvCWpHeJX62MOz4mWoNi0tB5pdb0MKtVnB4vVBq56poILAz-zvI1hPtPXTln6y5KBINc3UxqYwWG4jKjml9Ujuev2Bl-E8v_2zcx0pev0PWDGctCfM6F4gh_uXmqTRmhh3jST4Zmh1MR1X6yKzdoRbRySuyh7UPYIY6GakRAa6Z792VbgIpahi213ix1swyd9_8gasF7dH_JM8w&sai=AMfl-YQQlb9tePdCDEibEsvlbNnOrtM6jf3Ig6i45pY-XHRSArSYW2dQZy6sxrhWlEdEB_vnbhtRo20fdWpfN3WtYOLWNNLsl8F_-uRycX77M-RCWKnK_j1EwIv2gpc4sLIR07bLMcYA06bJ_4xoW0TInbju2WSjUfjO_dovHU4EPfYSCsnxvyoIVpnzIGoXbSVN2RZHipStbo5dWLzBHD46z1vAxpvlJZtsdG80WOZATZukR22pgQ980XO7mnDfg9asdfclJ1buMzfOJ-6DwsyEezjO8sIbbs7rYn0K1-LrU82U0kmiRDZYspMuidR36UDyG9rH7WNOZ6ICyIeFRcrt_WBHqc0vybZlTcqiA4d1N6RkBIb_VTOioIBULebm4XMJfMrjeTL4QLZzRlfrtxZt0Q3MtcDCpzKZ0Lfl_B3GzZr19uxy4u7VyyqZQ5KoZxXqibbIIRbQOF5p5ug-2aaX1bNK0w&sig=Cg0ArKJSzKpKg6wUolSyEAE&uach_m=[UACH]&pr=missingexchangepricemacro&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=0&cisv=r20230201.59085&arae=0&ftch=1&adurl=
142.250.74.34200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjstWz3Opz1FB390nKCdAAWv--2lFXxLHlVVLx3sBCxxaGX3NitPW0f_2SnK6p-v9Ybr2hi5qZY41y0IkFStMUWfXoMI4uvgeIL3PIYVK42Owrpg6isg8gyaKM-3KTjJ-h_MXt9cmJtv23rz7YdqfXwWUAiMp_Ir6V-m-gLWHoUM97CFiqw9dMQO6NMPS0i4RavslhgOv67_pKDahq73nNKl6HvPK2391BQtFEhZjlenUzK9PXWNc7QQDSRS3KUUTzpTvAjjV9aZDryVXxSHG1E-1wCf4UmBcodZsxDvd6Kbq56JtdcnDYIu4B3uK3ql1gE0AsBBZeM8UjmpxuOlMoLH-9IYTfTmfo5MGIP3OXSYrMTt3GOo3uyEFN99Rey1txfieq4yJQwUCjY1KJfGbG4quC2aRaoVRIPocjAqSj5o8mP1t2SnNDiGyGn0nuLjU6b1l5APdLdDDJTRHPMHnn9IBtU34JV0RQwBs1fpHrPcqnvalnYWhrWZcUWSHh20-HgwVzzESSF2mJ_TDoPn5hPnOVwwPsAkxrFimQEtc0xPgrFyo4-v9-uDeQR966Z2LLo-udm3r-eGh43vH0OFen997KdDUaiWOqnV5r28jz_wzGI60E-E1Zgnf3YcJ3dWpeiVU6QT-VQEEPwVkoFchPV-bSUN9MYjnvEw5ZIkXv0oN10gpQ3cOt81pzgxWxCRaNmin4LtzF-qlzCbh4yYXpf7ptkDIauhhelCFecNOd-PRGh_Fkb_eHu3Vo8W67P385qxM-JJC2n7Q2ewHPSe_mbd7zrqhLMqvQuDs3ay8afeOtAi1NjivP8Fdt5agc290toP_L-juCVxCogeOYp_1lC5SxKPZNjeCINSOkwE2_TPy4ngQ4nHcRmH2TAEs8CLyO3P9cw5_jB60c1Nrlwsq36fh0uCPdGbZQqBLNkHWHU0fUF62qaaiHkNdUDkSgtO0UdvCWpHeJX62MOz4mWoNi0tB5pdb0MKtVnB4vVBq56poILAz-zvI1hPtPXTln6y5KBINc3UxqYwWG4jKjml9Ujuev2Bl-E8v_2zcx0pev0PWDGctCfM6F4gh_uXmqTRmhh3jST4Zmh1MR1X6yKzdoRbRySuyh7UPYIY6GakRAa6Z792VbgIpahi213ix1swyd9_8gasF7dH_JM8w&sai=AMfl-YQQlb9tePdCDEibEsvlbNnOrtM6jf3Ig6i45pY-XHRSArSYW2dQZy6sxrhWlEdEB_vnbhtRo20fdWpfN3WtYOLWNNLsl8F_-uRycX77M-RCWKnK_j1EwIv2gpc4sLIR07bLMcYA06bJ_4xoW0TInbju2WSjUfjO_dovHU4EPfYSCsnxvyoIVpnzIGoXbSVN2RZHipStbo5dWLzBHD46z1vAxpvlJZtsdG80WOZATZukR22pgQ980XO7mnDfg9asdfclJ1buMzfOJ-6DwsyEezjO8sIbbs7rYn0K1-LrU82U0kmiRDZYspMuidR36UDyG9rH7WNOZ6ICyIeFRcrt_WBHqc0vybZlTcqiA4d1N6RkBIb_VTOioIBULebm4XMJfMrjeTL4QLZzRlfrtxZt0Q3MtcDCpzKZ0Lfl_B3GzZr19uxy4u7VyyqZQ5KoZxXqibbIIRbQOF5p5ug-2aaX1bNK0w&sig=Cg0ArKJSzKpKg6wUolSyEAE&uach_m=[UACH]&pr=missingexchangepricemacro&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=0&cisv=r20230201.59085&arae=0&ftch=1&adurl=
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjstWz3Opz1FB390nKCdAAWv--2lFXxLHlVVLx3sBCxxaGX3NitPW0f_2SnK6p-v9Ybr2hi5qZY41y0IkFStMUWfXoMI4uvgeIL3PIYVK42Owrpg6isg8gyaKM-3KTjJ-h_MXt9cmJtv23rz7YdqfXwWUAiMp_Ir6V-m-gLWHoUM97CFiqw9dMQO6NMPS0i4RavslhgOv67_pKDahq73nNKl6HvPK2391BQtFEhZjlenUzK9PXWNc7QQDSRS3KUUTzpTvAjjV9aZDryVXxSHG1E-1wCf4UmBcodZsxDvd6Kbq56JtdcnDYIu4B3uK3ql1gE0AsBBZeM8UjmpxuOlMoLH-9IYTfTmfo5MGIP3OXSYrMTt3GOo3uyEFN99Rey1txfieq4yJQwUCjY1KJfGbG4quC2aRaoVRIPocjAqSj5o8mP1t2SnNDiGyGn0nuLjU6b1l5APdLdDDJTRHPMHnn9IBtU34JV0RQwBs1fpHrPcqnvalnYWhrWZcUWSHh20-HgwVzzESSF2mJ_TDoPn5hPnOVwwPsAkxrFimQEtc0xPgrFyo4-v9-uDeQR966Z2LLo-udm3r-eGh43vH0OFen997KdDUaiWOqnV5r28jz_wzGI60E-E1Zgnf3YcJ3dWpeiVU6QT-VQEEPwVkoFchPV-bSUN9MYjnvEw5ZIkXv0oN10gpQ3cOt81pzgxWxCRaNmin4LtzF-qlzCbh4yYXpf7ptkDIauhhelCFecNOd-PRGh_Fkb_eHu3Vo8W67P385qxM-JJC2n7Q2ewHPSe_mbd7zrqhLMqvQuDs3ay8afeOtAi1NjivP8Fdt5agc290toP_L-juCVxCogeOYp_1lC5SxKPZNjeCINSOkwE2_TPy4ngQ4nHcRmH2TAEs8CLyO3P9cw5_jB60c1Nrlwsq36fh0uCPdGbZQqBLNkHWHU0fUF62qaaiHkNdUDkSgtO0UdvCWpHeJX62MOz4mWoNi0tB5pdb0MKtVnB4vVBq56poILAz-zvI1hPtPXTln6y5KBINc3UxqYwWG4jKjml9Ujuev2Bl-E8v_2zcx0pev0PWDGctCfM6F4gh_uXmqTRmhh3jST4Zmh1MR1X6yKzdoRbRySuyh7UPYIY6GakRAa6Z792VbgIpahi213ix1swyd9_8gasF7dH_JM8w&sai=AMfl-YQQlb9tePdCDEibEsvlbNnOrtM6jf3Ig6i45pY-XHRSArSYW2dQZy6sxrhWlEdEB_vnbhtRo20fdWpfN3WtYOLWNNLsl8F_-uRycX77M-RCWKnK_j1EwIv2gpc4sLIR07bLMcYA06bJ_4xoW0TInbju2WSjUfjO_dovHU4EPfYSCsnxvyoIVpnzIGoXbSVN2RZHipStbo5dWLzBHD46z1vAxpvlJZtsdG80WOZATZukR22pgQ980XO7mnDfg9asdfclJ1buMzfOJ-6DwsyEezjO8sIbbs7rYn0K1-LrU82U0kmiRDZYspMuidR36UDyG9rH7WNOZ6ICyIeFRcrt_WBHqc0vybZlTcqiA4d1N6RkBIb_VTOioIBULebm4XMJfMrjeTL4QLZzRlfrtxZt0Q3MtcDCpzKZ0Lfl_B3GzZr19uxy4u7VyyqZQ5KoZxXqibbIIRbQOF5p5ug-2aaX1bNK0w&sig=Cg0ArKJSzKpKg6wUolSyEAE&uach_m=[UACH]&pr=missingexchangepricemacro&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=0&cisv=r20230201.59085&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
access-control-allow-origin: *
cache-control: private
content-type: image/gif
x-content-type-options: nosniff
date: Mon, 06 Feb 2023 10:38:18 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 06-Feb-2023 10:53:18 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 06 Feb 2023 10:38:18 GMT
X-Firefox-Spdy: h2
s0.2mdn.net/simgad/16846759690548905292
216.58.211.6200 OK 69 kB URL HTTP/2 s0.2mdn.net/simgad/16846759690548905292
IP 216.58.211.6:0
File type PNG image data, 160 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash ff6ab5adb25f02e38bb480716d38828f
a7cdc82c1145c4e749273b48b523b9e4ace3d078
cfd0e2fb8436cc62f83b9a1fc6bd1dcb8784f736b5b733cf62a6904785889536
GET /simgad/16846759690548905292 HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 68958
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 08:16:11 GMT
expires: Fri, 02 Feb 2024 08:16:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 Aug 2022 07:18:21 GMT
content-type: image/png
age: 354127
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a1b0adb1c8292e353e84a56a163dddf0
e72fe20524a0cc1d6077eeef4445bd24cae46a60
d82c206adfc4b455e24ae565256cca03e48944af39dbbef0c704ddfc1cce501a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjstWz3Opz1FB390nKCdAAWv--2lFXxLHlVVLx3sBCxxaGX3NitPW0f_2SnK6p-v9Ybr2hi5qZY41y0IkFStMUWfXoMI4uvgeIL3PIYVK42Owrpg6isg8gyaKM-3KTjJ-h_MXt9cmJtv23rz7YdqfXwWUAiMp_Ir6V-m-gLWHoUM97CFiqw9dMQO6NMPS0i4RavslhgOv67_pKDahq73nNKl6HvPK2391BQtFEhZjlenUzK9PXWNc7QQDSRS3KUUTzpTvAjjV9aZDryVXxSHG1E-1wCf4UmBcodZsxDvd6Kbq56JtdcnDYIu4B3uK3ql1gE0AsBBZeM8UjmpxuOlMoLH-9IYTfTmfo5MGIP3OXSYrMTt3GOo3uyEFN99Rey1txfieq4yJQwUCjY1KJfGbG4quC2aRaoVRIPocjAqSj5o8mP1t2SnNDiGyGn0nuLjU6b1l5APdLdDDJTRHPMHnn9IBtU34JV0RQwBs1fpHrPcqnvalnYWhrWZcUWSHh20-HgwVzzESSF2mJ_TDoPn5hPnOVwwPsAkxrFimQEtc0xPgrFyo4-v9-uDeQR966Z2LLo-udm3r-eGh43vH0OFen997KdDUaiWOqnV5r28jz_wzGI60E-E1Zgnf3YcJ3dWpeiVU6QT-VQEEPwVkoFchPV-bSUN9MYjnvEw5ZIkXv0oN10gpQ3cOt81pzgxWxCRaNmin4LtzF-qlzCbh4yYXpf7ptkDIauhhelCFecNOd-PRGh_Fkb_eHu3Vo8W67P385qxM-JJC2n7Q2ewHPSe_mbd7zrqhLMqvQuDs3ay8afeOtAi1NjivP8Fdt5agc290toP_L-juCVxCogeOYp_1lC5SxKPZNjeCINSOkwE2_TPy4ngQ4nHcRmH2TAEs8CLyO3P9cw5_jB60c1Nrlwsq36fh0uCPdGbZQqBLNkHWHU0fUF62qaaiHkNdUDkSgtO0UdvCWpHeJX62MOz4mWoNi0tB5pdb0MKtVnB4vVBq56poILAz-zvI1hPtPXTln6y5KBINc3UxqYwWG4jKjml9Ujuev2Bl-E8v_2zcx0pev0PWDGctCfM6F4gh_uXmqTRmhh3jST4Zmh1MR1X6yKzdoRbRySuyh7UPYIY6GakRAa6Z792VbgIpahi213ix1swyd9_8gasF7dH_JM8w&sai=AMfl-YQQlb9tePdCDEibEsvlbNnOrtM6jf3Ig6i45pY-XHRSArSYW2dQZy6sxrhWlEdEB_vnbhtRo20fdWpfN3WtYOLWNNLsl8F_-uRycX77M-RCWKnK_j1EwIv2gpc4sLIR07bLMcYA06bJ_4xoW0TInbju2WSjUfjO_dovHU4EPfYSCsnxvyoIVpnzIGoXbSVN2RZHipStbo5dWLzBHD46z1vAxpvlJZtsdG80WOZATZukR22pgQ980XO7mnDfg9asdfclJ1buMzfOJ-6DwsyEezjO8sIbbs7rYn0K1-LrU82U0kmiRDZYspMuidR36UDyG9rH7WNOZ6ICyIeFRcrt_WBHqc0vybZlTcqiA4d1N6RkBIb_VTOioIBULebm4XMJfMrjeTL4QLZzRlfrtxZt0Q3MtcDCpzKZ0Lfl_B3GzZr19uxy4u7VyyqZQ5KoZxXqibbIIRbQOF5p5ug-2aaX1bNK0w&sig=Cg0ArKJSzKpKg6wUolSyEAE&uach_m=[UACH]&pr=missingexchangepricemacro&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=342&vt=11&dtpt=340&dett=2&cstd=0&cisv=r20230201.59085&arae=0&ftch=1&adurl=
142.250.74.34200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjstWz3Opz1FB390nKCdAAWv--2lFXxLHlVVLx3sBCxxaGX3NitPW0f_2SnK6p-v9Ybr2hi5qZY41y0IkFStMUWfXoMI4uvgeIL3PIYVK42Owrpg6isg8gyaKM-3KTjJ-h_MXt9cmJtv23rz7YdqfXwWUAiMp_Ir6V-m-gLWHoUM97CFiqw9dMQO6NMPS0i4RavslhgOv67_pKDahq73nNKl6HvPK2391BQtFEhZjlenUzK9PXWNc7QQDSRS3KUUTzpTvAjjV9aZDryVXxSHG1E-1wCf4UmBcodZsxDvd6Kbq56JtdcnDYIu4B3uK3ql1gE0AsBBZeM8UjmpxuOlMoLH-9IYTfTmfo5MGIP3OXSYrMTt3GOo3uyEFN99Rey1txfieq4yJQwUCjY1KJfGbG4quC2aRaoVRIPocjAqSj5o8mP1t2SnNDiGyGn0nuLjU6b1l5APdLdDDJTRHPMHnn9IBtU34JV0RQwBs1fpHrPcqnvalnYWhrWZcUWSHh20-HgwVzzESSF2mJ_TDoPn5hPnOVwwPsAkxrFimQEtc0xPgrFyo4-v9-uDeQR966Z2LLo-udm3r-eGh43vH0OFen997KdDUaiWOqnV5r28jz_wzGI60E-E1Zgnf3YcJ3dWpeiVU6QT-VQEEPwVkoFchPV-bSUN9MYjnvEw5ZIkXv0oN10gpQ3cOt81pzgxWxCRaNmin4LtzF-qlzCbh4yYXpf7ptkDIauhhelCFecNOd-PRGh_Fkb_eHu3Vo8W67P385qxM-JJC2n7Q2ewHPSe_mbd7zrqhLMqvQuDs3ay8afeOtAi1NjivP8Fdt5agc290toP_L-juCVxCogeOYp_1lC5SxKPZNjeCINSOkwE2_TPy4ngQ4nHcRmH2TAEs8CLyO3P9cw5_jB60c1Nrlwsq36fh0uCPdGbZQqBLNkHWHU0fUF62qaaiHkNdUDkSgtO0UdvCWpHeJX62MOz4mWoNi0tB5pdb0MKtVnB4vVBq56poILAz-zvI1hPtPXTln6y5KBINc3UxqYwWG4jKjml9Ujuev2Bl-E8v_2zcx0pev0PWDGctCfM6F4gh_uXmqTRmhh3jST4Zmh1MR1X6yKzdoRbRySuyh7UPYIY6GakRAa6Z792VbgIpahi213ix1swyd9_8gasF7dH_JM8w&sai=AMfl-YQQlb9tePdCDEibEsvlbNnOrtM6jf3Ig6i45pY-XHRSArSYW2dQZy6sxrhWlEdEB_vnbhtRo20fdWpfN3WtYOLWNNLsl8F_-uRycX77M-RCWKnK_j1EwIv2gpc4sLIR07bLMcYA06bJ_4xoW0TInbju2WSjUfjO_dovHU4EPfYSCsnxvyoIVpnzIGoXbSVN2RZHipStbo5dWLzBHD46z1vAxpvlJZtsdG80WOZATZukR22pgQ980XO7mnDfg9asdfclJ1buMzfOJ-6DwsyEezjO8sIbbs7rYn0K1-LrU82U0kmiRDZYspMuidR36UDyG9rH7WNOZ6ICyIeFRcrt_WBHqc0vybZlTcqiA4d1N6RkBIb_VTOioIBULebm4XMJfMrjeTL4QLZzRlfrtxZt0Q3MtcDCpzKZ0Lfl_B3GzZr19uxy4u7VyyqZQ5KoZxXqibbIIRbQOF5p5ug-2aaX1bNK0w&sig=Cg0ArKJSzKpKg6wUolSyEAE&uach_m=[UACH]&pr=missingexchangepricemacro&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=342&vt=11&dtpt=340&dett=2&cstd=0&cisv=r20230201.59085&arae=0&ftch=1&adurl=
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjstWz3Opz1FB390nKCdAAWv--2lFXxLHlVVLx3sBCxxaGX3NitPW0f_2SnK6p-v9Ybr2hi5qZY41y0IkFStMUWfXoMI4uvgeIL3PIYVK42Owrpg6isg8gyaKM-3KTjJ-h_MXt9cmJtv23rz7YdqfXwWUAiMp_Ir6V-m-gLWHoUM97CFiqw9dMQO6NMPS0i4RavslhgOv67_pKDahq73nNKl6HvPK2391BQtFEhZjlenUzK9PXWNc7QQDSRS3KUUTzpTvAjjV9aZDryVXxSHG1E-1wCf4UmBcodZsxDvd6Kbq56JtdcnDYIu4B3uK3ql1gE0AsBBZeM8UjmpxuOlMoLH-9IYTfTmfo5MGIP3OXSYrMTt3GOo3uyEFN99Rey1txfieq4yJQwUCjY1KJfGbG4quC2aRaoVRIPocjAqSj5o8mP1t2SnNDiGyGn0nuLjU6b1l5APdLdDDJTRHPMHnn9IBtU34JV0RQwBs1fpHrPcqnvalnYWhrWZcUWSHh20-HgwVzzESSF2mJ_TDoPn5hPnOVwwPsAkxrFimQEtc0xPgrFyo4-v9-uDeQR966Z2LLo-udm3r-eGh43vH0OFen997KdDUaiWOqnV5r28jz_wzGI60E-E1Zgnf3YcJ3dWpeiVU6QT-VQEEPwVkoFchPV-bSUN9MYjnvEw5ZIkXv0oN10gpQ3cOt81pzgxWxCRaNmin4LtzF-qlzCbh4yYXpf7ptkDIauhhelCFecNOd-PRGh_Fkb_eHu3Vo8W67P385qxM-JJC2n7Q2ewHPSe_mbd7zrqhLMqvQuDs3ay8afeOtAi1NjivP8Fdt5agc290toP_L-juCVxCogeOYp_1lC5SxKPZNjeCINSOkwE2_TPy4ngQ4nHcRmH2TAEs8CLyO3P9cw5_jB60c1Nrlwsq36fh0uCPdGbZQqBLNkHWHU0fUF62qaaiHkNdUDkSgtO0UdvCWpHeJX62MOz4mWoNi0tB5pdb0MKtVnB4vVBq56poILAz-zvI1hPtPXTln6y5KBINc3UxqYwWG4jKjml9Ujuev2Bl-E8v_2zcx0pev0PWDGctCfM6F4gh_uXmqTRmhh3jST4Zmh1MR1X6yKzdoRbRySuyh7UPYIY6GakRAa6Z792VbgIpahi213ix1swyd9_8gasF7dH_JM8w&sai=AMfl-YQQlb9tePdCDEibEsvlbNnOrtM6jf3Ig6i45pY-XHRSArSYW2dQZy6sxrhWlEdEB_vnbhtRo20fdWpfN3WtYOLWNNLsl8F_-uRycX77M-RCWKnK_j1EwIv2gpc4sLIR07bLMcYA06bJ_4xoW0TInbju2WSjUfjO_dovHU4EPfYSCsnxvyoIVpnzIGoXbSVN2RZHipStbo5dWLzBHD46z1vAxpvlJZtsdG80WOZATZukR22pgQ980XO7mnDfg9asdfclJ1buMzfOJ-6DwsyEezjO8sIbbs7rYn0K1-LrU82U0kmiRDZYspMuidR36UDyG9rH7WNOZ6ICyIeFRcrt_WBHqc0vybZlTcqiA4d1N6RkBIb_VTOioIBULebm4XMJfMrjeTL4QLZzRlfrtxZt0Q3MtcDCpzKZ0Lfl_B3GzZr19uxy4u7VyyqZQ5KoZxXqibbIIRbQOF5p5ug-2aaX1bNK0w&sig=Cg0ArKJSzKpKg6wUolSyEAE&uach_m=[UACH]&pr=missingexchangepricemacro&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=342&vt=11&dtpt=340&dett=2&cstd=0&cisv=r20230201.59085&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Mon, 06 Feb 2023 10:38:18 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 06-Feb-2023 10:53:18 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 06 Feb 2023 10:38:18 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 040d512b73ad828b2dd7409c0c9dab49
a7b7256940377241abd22db537a864ec6348bf90
6e7f979d255eba736072b159be75a5865fd307781806c412ea66bb0f80e38aa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 10:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash a804ed70cbbcfe69dfdbb288943603b9
7c421246e94cf18dc86b2412a29ce19d32e926a9
13e482cdd2e5eafb87c687ccd24974ebbdf28f5e7f1e1d4ae2d65aeef2379de6
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Mon, 06 Feb 2023 10:38:18 GMT
date: Mon, 06 Feb 2023 10:38:18 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-1oDVHMWPHHO0lqDzSHWtbw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/v2.9/plugins/page.php?adapt_container_width=true&app_id=1201893723234765&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df11ed9dbfc91ce6%26domain%3Dnvip.com.ua%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fnvip.com.ua%252Ffe60c6fc70da26%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FNovovolinsk%2F&locale=uk_UA&sdk=joey&show_facepile=true&small_header=false&width=300
31.13.72.36200 OK 19 kB URL HTTP/2 www.facebook.com/v2.9/plugins/page.php?adapt_container_width=true&app_id=1201893723234765&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df11ed9dbfc91ce6%26domain%3Dnvip.com.ua%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fnvip.com.ua%252Ffe60c6fc70da26%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FNovovolinsk%2F&locale=uk_UA&sdk=joey&show_facepile=true&small_header=false&width=300
IP 31.13.72.36:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20647)
Hash 7593d8d0abf2a7accf75d28471ea8c38
73a73d058c6ec98a486ffd59471b671fa31c1fb4
cff64f06ffb43ba55ce2a646c962b47f220be9d1ca49d4ecd8d9c0cdc5a3db0b
GET /v2.9/plugins/page.php?adapt_container_width=true&app_id=1201893723234765&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df11ed9dbfc91ce6%26domain%3Dnvip.com.ua%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fnvip.com.ua%252Ffe60c6fc70da26%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2FNovovolinsk%2F&locale=uk_UA&sdk=joey&show_facepile=true&small_header=false&width=300 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v9.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 8TAwKa87H+o0RVoax9dN/VhsZ9S5TufDIReNtipMRH5C5alL667PTBcm8DRtFCFqvZ48pHJGLd2k2IAGXt1pQA==
date: Mon, 06 Feb 2023 10:38:18 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 21:58:11 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: n41Kk8Orx4KK8afmNGKZWeeKORTcrB9k2NrmpScnBjU0KpN9EayH+0XeOyzkI9QdAazUKIftCk/sGEJDCzdyvg==
content-length: 830
x-fb-trip-id: 1904183273
date: Mon, 06 Feb 2023 10:38:18 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yt/r/uR54Z36ozn1.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 85 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yt/r/uR54Z36ozn1.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18622)
Hash 1e5ea6e1f1a9be8d41c1878d67d96255
13604433733135a91274c754a6b3148822458480
78f6be70e64f8cb49715f286f4bf814a05e6fced4fd575b69c60fc29e44c8908
GET /rsrc.php/v3/yt/r/uR54Z36ozn1.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 03 Feb 2024 20:01:09 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Hl6m4fGpvo1BwYeNZ9liVQ==
x-fb-debug: gz/xZDddB+I8BJFDeh96fx+4tNDFZzb2vrvivHbWnVG9s65OQBys/eMhD3qMpwR7yFONdws98TY5MsztdEWYpA==
content-length: 85121
x-fb-trip-id: 1904183273
date: Mon, 06 Feb 2023 10:38:18 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 6e9da4ca37bd91ed4b55bdfd94d641e6
581d1c986cf5809cd2fc1859f732d936b53708a8
b24defbd5bcb2f39db991c8361c62e39b0f199d8d72fa9f023739defee55dbd3
GET /rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 24 Jan 2024 19:06:33 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: bp2kyje9ke1LVb39lNZB5g==
x-fb-debug: xkXsuZHR0BI1JoOb225mZ/G41QHABRao8+gBxLrsCVxh5uyNUgYb7UpUfUFQvmcUZW6Z5aNS8oh+FeijCaapMw==
content-length: 1649
x-fb-trip-id: 1904183273
date: Mon, 06 Feb 2023 10:38:18 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (8848)
Hash 40fab775b9d5c0cd37478bb98c8d3fd4
3a47077aff06f1dcb1c7f15371f717bcc0501ddf
15bda90227b20a41920214b955645583399f5231147f10d3dee099fe91b442e4
GET /rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 03 Feb 2024 05:35:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: QPq3dbnVwM03R4u5jI0/1A==
x-fb-debug: 3qw0Z3CootIdhr1sQTML0asV4CVFeFmKs5HAHqelS1xdao6G4kweCLr1ZkHjX1nDgrudQTb4IOeqHcJxUR/Gug==
content-length: 16342
x-fb-trip-id: 1904183273
date: Mon, 06 Feb 2023 10:38:18 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3il1s4/yA/l/uk_UA/exCjmG6feFy.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3il1s4/yA/l/uk_UA/exCjmG6feFy.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (43242)
Hash 651aea826790bad470f2f003731b3a79
bd4ac9bc3689ea80495b46ff194f3ee71447828d
e00810146bc03c8330dbb808e3200cc8ab109ecfc496fd65a10859aae6e86507
GET /rsrc.php/v3il1s4/yA/l/uk_UA/exCjmG6feFy.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 03 Feb 2024 18:46:42 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: ZRrqgmeQutRw8vADcxs6eQ==
x-fb-debug: 3z7WdJpRMep/dOX7CKo+n6mowOXiHIGgUDSK5c07mrK5ZguEbuxTOFNQJDdfPFdoD0VE33G2xjOhSrLA7iSMGw==
content-length: 23721
x-fb-trip-id: 1904183273
date: Mon, 06 Feb 2023 10:38:18 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8744
Expires: Mon, 06 Feb 2023 13:04:02 GMT
Date: Mon, 06 Feb 2023 10:38:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8744
Expires: Mon, 06 Feb 2023 13:04:02 GMT
Date: Mon, 06 Feb 2023 10:38:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8744
Expires: Mon, 06 Feb 2023 13:04:02 GMT
Date: Mon, 06 Feb 2023 10:38:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a24cf7b2db6d65c3fe5daf78b3309ced
a3653a9a7baea412808dd91572ff21e1a505c26f
f55ee98bab5ce53d6acc1cac7f54f089b42d5f2ffbe750d869c4f4a7bc26f715
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13230
x-amzn-requestid: 8171829a-cf6d-4c33-99a1-f3cef7cd4475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiTH8GoAMFYLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-1597a0f06ef3db2534a101aa;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Nvfp0sEYw5bxnFHisq80WCXh6T-LdFlPqs95tyX2epjMfhM_hjUj0A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 46095
etag: "a3653a9a7baea412808dd91572ff21e1a505c26f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 762 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a7c0ff430d50426072a23584d6eb0a1b
ffb3739e7467fbdf3ebd4a0255885cbb3745e0f4
a732af784d92ac3dae05c3d131cf1ac5c9e42e8abb64873083fa3dd211779803
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8744
Expires: Mon, 06 Feb 2023 13:04:02 GMT
Date: Mon, 06 Feb 2023 10:38:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8744
Expires: Mon, 06 Feb 2023 13:04:02 GMT
Date: Mon, 06 Feb 2023 10:38:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67ec8ef-bdc5-4f9b-a7be-c0d8b932923a.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67ec8ef-bdc5-4f9b-a7be-c0d8b932923a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f267c5cee67458c0f6ef42c4feb5217e
f5092ce77834e8f1f245b987204ff6a194c38ef6
84c5cde3d7e06e6dd32d1c98172606c8d912c7032a4677f8851e42e4b195e420
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67ec8ef-bdc5-4f9b-a7be-c0d8b932923a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9451
x-amzn-requestid: 3f95347b-f0bf-43dd-90fc-5087bf0de607
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4okJGUCoAMF0sA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0214d-53d6a2de41af72770b086196;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jmGGGqJoMe4zt4RqNID5Xo7SVaWVAIAYf9s9YcduklkfdFnYniULOA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:03 GMT
age: 46035
etag: "f5092ce77834e8f1f245b987204ff6a194c38ef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad2298793399bf73c51c7d60952065c1
816bd4c36ceea2c46489ae72fde0b4a94c7c4bef
dc540d64e5e0835c7007e89ca3b5dd620b43a87e13309f323f3843a5f908a199
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f78f981-25b3-46b1-a96b-baa8e001cc8e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8649
x-amzn-requestid: f85f3c9d-95c1-4db6-af5f-595070fe46c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHzboAMFQCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-6eed72bf20887cac6dc1a56a;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z7HTSLYJmhfIGlCjeG2EeN3q2Cd9vKlq71nqo3iIuhwkgwlEAlRPmQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:02 GMT
age: 46036
etag: "816bd4c36ceea2c46489ae72fde0b4a94c7c4bef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6941fb6-e957-4628-8403-b30032e53952.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6941fb6-e957-4628-8403-b30032e53952.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d97807096c24402f2938faa7bef0bb1f
5dcc91fcfb218579f9bb8d74949c62b42a0ee0f5
61d5e5e14348dcd17a2d65ed50bf4870cfa0869b2027bd9e02e5656b71ae7b07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6941fb6-e957-4628-8403-b30032e53952.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9504
x-amzn-requestid: 5ed1526b-636a-4aac-9900-3438fe44bc68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4o9ZF4fIAMFuhQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e021ef-6925f9fa343504e94459aa70;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:38:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U81u29w8Kam-xsluWwUqh-4J1bS-8viBRP4f6ERFJcGUpsDLcB-feg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:57:34 GMT
age: 45644
etag: "5dcc91fcfb218579f9bb8d74949c62b42a0ee0f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a9b5f68-fd45-4868-ba31-8118d000f7d9.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a9b5f68-fd45-4868-ba31-8118d000f7d9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea463f7a06fe1403c18c8ce8781244a1
fbbe4b97e4b39983b36340030f6b40adc69cd485
93a12a85886512e3336d027c889a2276087976b1c9106356cc81596b88087042
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a9b5f68-fd45-4868-ba31-8118d000f7d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8971
x-amzn-requestid: b1baa973-5b7c-4daa-af2e-e9f0b3c6a604
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzViwFG1IAMF4qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de02de-4a0c9cf45c1a20083bb838dc;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:01:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L2u3Gp-3bJ8TbGiqayHuab-ELwY7ZpVqc_4TrpraHwvWobAqn21tBw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 07:32:23 GMT
age: 11155
etag: "fbbe4b97e4b39983b36340030f6b40adc69cd485"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:10:54 GMT
age: 44844
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
216.58.207.238200 OK 0 B URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs
IP 216.58.207.238:0
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AMZ27oQJoUI.O/m=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nvip.com.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 44894
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:32:58 GMT
expires: Fri, 02 Feb 2024 00:32:58 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 07 Jan 2023 15:19:07 GMT
content-type: text/javascript; charset=UTF-8
age: 381919
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2